$ openssl genrsa -out server.key 2048\r\nGenerating RSA private key, 2048 bit long modulus\r\n...........................................................................+++\r\n.+++\r\ne is 65537 (0x10001)\r\n<\/code><\/pre>\n\u3053\u308c\u306b\u3088\u3063\u3066\u51fa\u6765\u305f\u3001\u79d8\u5bc6\u9375\u30d5\u30a1\u30a4\u30eb server.key \u306f\u3001\u4e0b\u8a18\u306e\u3088\u3046\u306a\u5185\u5bb9\u3067\u3059\u3002<\/p>\n
-----BEGIN RSA PRIVATE KEY-----\r\nMIIEpAIBAAKCAQEArtklu5Vc1eDvrgxJx78MWa7aRoG5MWZKplE1oCpC5RmKmvIs\r\nGalOoS53RBZ\/MLct0B7ryYBOh+YI\/ojlbXHsonqAa1ibpXmfO2ba94YxoIj2A+hn\r\nVOLWXm0S\/GOIqCERs\/WeDlz6ndy4AtBCClnMX+MZPbgDOytutGoTRYlJDn+0Y\/aG\r\nMreUvWqM1Ncxg6zdteCp8m9Ue9TYD7cSU7\/wqiXrrxJUj+nUI+\/o\/QnSwGbtNiDD\r\nAS+U\/voOHYf7g7SohTxouqJchrfAkrX66YABUxyxXmj6U+4JCUtIKDSJelPB3Yri\r\ne7rzJr10oy7Xy0fZig84KJKhc8b7O9Gvt7oLJwIDAQABAoIBAQCXgEwzl54TLI5B\r\nTyB21VGMO\/eh9DFVXn78UY2XtEa2YEU7MO+JZKxe+PYapyuaOH6XwNMpi+V\/15Cf\r\njFrPVFFoD6FKYkKrRRD11Y+RvlMt+L7CcBNo+AwrUXOMAWqd09mVBxPm+iWlt2Qx\r\n++XdNiXiR9LNKa6TDHUmGmuMawJEbnBcm3yNVfEhkJ88Wj9aUW5HpT9+cUamwlKa\r\n2Tfp+PFiqFzZnaymPLzFlkbi\/GHzx7PPHs6niaph5hLYa1EPa6ogdmSBeHuuUWzp\r\nhbzLrf8iwVfoyFUPCFmpY0JdCuY6v45giWy5lR\/aXjHgCjC4MT9XcecL13ZCkEaw\r\n\/ixLxfxxAoGBANccC+5j96Cn6Dx6AiGMx0TxRvVTRXs+nN1\/ShRNVN2jz4vdtN60\r\nCYOLldIlUS1VT8Hflpxk1YUx\/+yUAsqUH0O3ViK40d\/DRb6aZIUsF3PQjawjgC7+\r\nAjCWDP52nRU\/llcoyl6lJyrDO\/rgMG1Y97JhAXF4G+nkRpky2pTbjbBdAoGBANAV\r\n2XmN4BFDVL3qpQr3g\/TbDZrj\/ZCIDwLz\/A9CRg5mtG9DSvLe0XzKpi9KCIbDG\/fC\r\n1OyP7QcjUv4L+ftSU69ZvXYXd5TVWMP4N1H5jXiLL2P2wQYpL12Rb003vVNnFURC\r\nlqM4K6NQ4LtYYnv\/4yXeL5EpIG42eNlCzQwL54FTAoGAOuI+kd9jpeLQu91aP\/zd\r\nf43cssM8veQB5NA3Yx9YH+P7qHnkTSJTiGLpfEEi25oC3ztpax5fJLrvJ7\/Mk8\/A\r\nTzUcqxyUtwApU2fIJHxRXy6z2W9OY4684rfwjqfBkFN7wBg2bXogIqCXBrHgD87O\r\n31GWp40NdxU6Di3Rj\/YZ7zECgYBenUC4U3lJgCr8+781oFvArwWdowL9f9ALkLLQ\r\noVrHW425dYiTrBrmuiIcKHZ+CCMkYdN9COhGsZof54Qv8TwZ5B0QoBUAeI2W9br5\r\nrBXWdLsEogMccQeXbPSF0M1mKd3ynrBt4LF+3dyBcuu85Bn9cux\/\/YpAcsY6S3R+\r\ngL8v\/wKBgQDGGNUdLesi9c1efgMKtw+VwvwVSfc4l0wqLlBUZRoBrrToFaSQ8wZj\r\nwUF7JaHixR3UvtMtmUmRmKhF\/mOaBedn+hpS9gROo7UEfgXzDG+5beOMo4OwIZqG\r\nKlV85aegq6EzCsdOKECqBQ+qoovJ2rx1+LaTdDuoe1BfhFy3RBZ\/Yw==\r\n-----END RSA PRIVATE KEY-----\r\n<\/code><\/pre>\nhttps \u306e\u8a3c\u660e\u66f8\u3092\u7533\u3057\u8fbc\u3093\u3060\u6642\u306b\u306f\u3001\u4e71\u6570\u7528\u306e\uff1f\u9069\u5f53\u306a\u30d5\u30a1\u30a4\u30eb\u3092\u7528\u610f\u3057\u3066\u4f5c\u6210\u3057\u307e\u3057\u305f\u304c\u3001\u4eca\u56de\u306f\u4f7f\u7528\u3057\u307e\u305b\u3093\u3002RSA\u6697\u53f7\u3067\u306f\u516c\u958b\u9375\u3068\u79d8\u5bc6\u9375\u304c\u3042\u308b\u308f\u3051\u3067\u3059\u304c\u3001\u3053\u306e\u79d8\u5bc6\u9375\u306b\u306f\u516c\u958b\u9375\u304c\u542b\u307e\u308c\u3066\u3044\u307e\u3059\uff08\u53c2\u8003\uff1aRSA\u9375\u3001\u8a3c\u660e\u66f8\u306e\u30d5\u30a1\u30a4\u30eb\u30d5\u30a9\u30fc\u30de\u30c3\u30c8\u306b\u3064\u3044\u3066<\/a>\uff09\u3002\u4e0b\u8a18\u306e\u30b3\u30de\u30f3\u30c9\u3067\u3001\u516c\u958b\u9375\u30d5\u30a1\u30a4\u30eb\u3092\u4f5c\u6210\u3057\u307e\u3059\u3002<\/p>\n$ openssl rsa -in server.key -pubout -out public.key\r\nwriting RSA key\r\n<\/code><\/pre>\npublic.key \u30d5\u30a1\u30a4\u30eb\u306e\u5185\u5bb9\u306f\u4e0b\u8a18\u3002<\/p>\n
-----BEGIN PUBLIC KEY-----\r\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtklu5Vc1eDvrgxJx78M\r\nWa7aRoG5MWZKplE1oCpC5RmKmvIsGalOoS53RBZ\/MLct0B7ryYBOh+YI\/ojlbXHs\r\nonqAa1ibpXmfO2ba94YxoIj2A+hnVOLWXm0S\/GOIqCERs\/WeDlz6ndy4AtBCClnM\r\nX+MZPbgDOytutGoTRYlJDn+0Y\/aGMreUvWqM1Ncxg6zdteCp8m9Ue9TYD7cSU7\/w\r\nqiXrrxJUj+nUI+\/o\/QnSwGbtNiDDAS+U\/voOHYf7g7SohTxouqJchrfAkrX66YAB\r\nUxyxXmj6U+4JCUtIKDSJelPB3Yrie7rzJr10oy7Xy0fZig84KJKhc8b7O9Gvt7oL\r\nJwIDAQAB\r\n-----END PUBLIC KEY-----\r\n<\/code><\/pre>\n\u79d8\u5bc6\u9375\u304b\u3089CSR\uff08\u8a3c\u660e\u66f8\u767a\u884c\u8981\u6c42\uff09\u3068\u3044\u3046\u30d5\u30a1\u30a4\u30eb\u3092\u4f5c\u6210\u3057\u307e\u3059\u3002\u3053\u306e\u6642\u3001\u7d44\u7e54\u540d\u306a\u3069\u306e\u60c5\u5831\u3092\u5165\u529b\u3059\u308b\u5fc5\u8981\u304c\u3042\u308a\u307e\u3059\u3002\u4e0b\u56f3\u306f\u672c\u7269\u306e\u8a3c\u660e\u66f8\u3092 firefox \u3067\u8868\u793a\u3055\u305b\u305f\u3082\u306e\u3067\u3059\u3002
\n![\"cert\"](\"http:\/\/zairyo.susi.oita-u.ac.jp\/wordpress\/wp-content\/uploads\/2017\/02\/cert-289x300.png\")
<\/a>
\n\u4e0a\u8a18\u306b\u3042\u308b\u3001\u30b5\u30fc\u30d0\u30fc\u306eURL\u7b49\u306e\u60c5\u5831\u304c\u5fc5\u8981\u3067\u3059\u304c\u3001\u4eca\u56de\u306f\u9069\u5f53\u306b\u5165\u529b\u3057\u307e\u3057\u305f\u3002\u4e0b\u8a18\u306e\u30b3\u30de\u30f3\u30c9\u3092\u6253\u3064\u3068\u3001\u5bfe\u8a71\u7684\u306a\u5165\u529b\u304c\u59cb\u307e\u308a\u307e\u3059\u3002\u3068\u3053\u308d\u3069\u3053\u308d\u30c9\u30c3\u30c8\uff08.\uff09\u3092\u5165\u529b\u3057\u3066\u3044\u308b\u3068\u3053\u308d\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n$ openssl req -new -sha256 -key server.key -out server.csr\r\nYou are about to be asked to enter information that will be incorporated\r\ninto your certificate request.\r\nWhat you are about to enter is what is called a Distinguished Name or a DN.\r\nThere are quite a few fields but you can leave some blank\r\nFor some fields there will be a default value,\r\nIf you enter '.', the field will be left blank.\r\n-----\r\nCountry Name (2 letter code) [AU]:JP\r\nState or Province Name (full name) [Some-State]:.\r\nLocality Name (eg, city) []:Academe\r\nOrganization Name (eg, company) [Internet Widgits Pty Ltd]:Oita Univ.\r\nOrganizational Unit Name (eg, section) []:kondolab\r\nCommon Name (e.g. server FQDN or YOUR name) []:192.168.100.190\r\nEmail Address []:.\r\n\r\nPlease enter the following 'extra' attributes\r\nto be sent with your certificate request\r\nA challenge password []:.\r\nAn optional company name []:.\r\n<\/code><\/pre>\n\u4f5c\u6210\u3055\u308c\u308b server.csr \u306e\u5185\u5bb9\u306f\u4e0b\u8a18\u3002<\/p>\n
-----BEGIN CERTIFICATE REQUEST-----\r\nMIICpjCCAY4CAQAwYTELMAkGA1UEBhMCSlAxEDAOBgNVBAcMB0FjYWRlbWUxEzAR\r\nBgNVBAoMCk9pdGEgVW5pdi4xETAPBgNVBAsMCGtvbmRvbGFiMRgwFgYDVQQDDA8x\r\nOTIuMTY4LjEwMC4xOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu\r\n2SW7lVzV4O+uDEnHvwxZrtpGgbkxZkqmUTWgKkLlGYqa8iwZqU6hLndEFn8wty3Q\r\nHuvJgE6H5gj+iOVtceyieoBrWJuleZ87Ztr3hjGgiPYD6GdU4tZebRL8Y4ioIRGz\r\n9Z4OXPqd3LgC0EIKWcxf4xk9uAM7K260ahNFiUkOf7Rj9oYyt5S9aozU1zGDrN21\r\n4Knyb1R71NgPtxJTv\/CqJeuvElSP6dQj7+j9CdLAZu02IMMBL5T++g4dh\/uDtKiF\r\nPGi6olyGt8CStfrpgAFTHLFeaPpT7gkJS0goNIl6U8HdiuJ7uvMmvXSjLtfLR9mK\r\nDzgokqFzxvs70a+3ugsnAgMBAAGgADANBgkqhkiG9w0BAQsFAAOCAQEASOq0rgCT\r\nvzMQ7XAFLlypUxpl5Gc73Dl1XUh4GpggM7ta6xDkO2Dms5wY4KLaH1+jvXyjqNjW\r\nj\/PQboBciTWbcktUPw6p2V9waPFjTiXzXUkt6AHoSkpxJrKVxsrAsp5J9Rwm4+SC\r\n5rC7h6s97KS0Bb5jcei4edpx5FlHaHH27yDq2nZbR4Hbb7lqL2klsmUZ9\/CYe\/I9\r\ncaNG1nUnBUigtMm7fyagkPxdMMEHwfMdh0UtUgkZQi972Y4Lo\/VVxuWiTJLtbTsJ\r\nsAfQpNluOHEYy1lUQBCRa0A+ht6dMd3YqI3LPft7Zyq7yrx1cS7hfznB0lgCQGco\r\nqXGwweBhn4UAXQ==\r\n-----END CERTIFICATE REQUEST-----\r\n<\/code><\/pre>\n\u4eca\u56de\u306f\u3001\u4fd7\u306b\u8a00\u3046\u30aa\u30ec\u30aa\u30ec\u8a3c\u660e\u66f8\uff08self-signed\u3000certificate\uff09\u3092\u4f5c\u6210\u3057\u307e\u3059\u3002\u5148\u307b\u3069\u306eCSR\u30d5\u30a1\u30a4\u30eb\u3068\u79d8\u5bc6\u9375\u306e\u30d5\u30a1\u30a4\u30eb\u304b\u3089\u8a3c\u660e\u66f8\u3092\u4e0b\u8a18\u306e\u30b3\u30de\u30f3\u30c9\u3067\u4f5c\u6210\u3057\u307e\u3059\u3002<\/p>\n
$ openssl x509 -req -in server.csr -signkey server.key -out server.cer\r\nSignature ok\r\nsubject=\/C=JP\/L=Academe\/O=Oita Univ.\/OU=kondolab\/CN=192.168.100.190\r\nGetting Private key\r\n<\/code><\/pre>\n\u4f5c\u6210\u3055\u308c\u305f\u3001server.cer \u30d5\u30a1\u30a4\u30eb\u306e\u5185\u5bb9\u306f\u4e0b\u8a18\u3002<\/p>\n
-----BEGIN CERTIFICATE-----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\r\neLtitXHrKKOIn8w+J5C7EqIs\r\n-----END CERTIFICATE-----<\/code><\/pre>\n\u3053\u306e\u8a3c\u660e\u66f8\u306e\u4e2d\u8eab\u3092\u898b\u3066\u307f\u307e\u3059\u3002\u4e0b\u8a18\u306e\u30b3\u30de\u30f3\u30c9\u3092\u4f7f\u7528\u3059\u308b\u3068\u3001<\/p>\n
$ openssl x509 -in server.cer -text -noout\r\nCertificate:\r\n Data:\r\n Version: 1 (0x0)\r\n Serial Number: 15243878019589719051 (0xd38d224b1507c40b)\r\n Signature Algorithm: sha256WithRSAEncryption\r\n Issuer: C=JP, L=Academe, O=Oita Univ., OU=kondolab, CN=192.168.100.190\r\n Validity\r\n Not Before: Feb 9 09:56:50 2017 GMT\r\n Not After : Mar 11 09:56:50 2017 GMT\r\n Subject: C=JP, L=Academe, O=Oita Univ., OU=kondolab, CN=192.168.100.190\r\n Subject Public Key Info:\r\n Public Key Algorithm: rsaEncryption\r\n Public-Key: (2048 bit)\r\n Modulus:\r\n 00:ae:d9:25:bb:95:5c:d5:e0:ef:ae:0c:49:c7:bf:\r\n 0c:59:ae:da:46:81:b9:31:66:4a:a6:51:35:a0:2a:\r\n 42:e5:19:8a:9a:f2:2c:19:a9:4e:a1:2e:77:44:16:\r\n 7f:30:b7:2d:d0:1e:eb:c9:80:4e:87:e6:08:fe:88:\r\n e5:6d:71:ec:a2:7a:80:6b:58:9b:a5:79:9f:3b:66:\r\n da:f7:86:31:a0:88:f6:03:e8:67:54:e2:d6:5e:6d:\r\n 12:fc:63:88:a8:21:11:b3:f5:9e:0e:5c:fa:9d:dc:\r\n b8:02:d0:42:0a:59:cc:5f:e3:19:3d:b8:03:3b:2b:\r\n 6e:b4:6a:13:45:89:49:0e:7f:b4:63:f6:86:32:b7:\r\n 94:bd:6a:8c:d4:d7:31:83:ac:dd:b5:e0:a9:f2:6f:\r\n 54:7b:d4:d8:0f:b7:12:53:bf:f0:aa:25:eb:af:12:\r\n 54:8f:e9:d4:23:ef:e8:fd:09:d2:c0:66:ed:36:20:\r\n c3:01:2f:94:fe:fa:0e:1d:87:fb:83:b4:a8:85:3c:\r\n 68:ba:a2:5c:86:b7:c0:92:b5:fa:e9:80:01:53:1c:\r\n b1:5e:68:fa:53:ee:09:09:4b:48:28:34:89:7a:53:\r\n c1:dd:8a:e2:7b:ba:f3:26:bd:74:a3:2e:d7:cb:47:\r\n d9:8a:0f:38:28:92:a1:73:c6:fb:3b:d1:af:b7:ba:\r\n 0b:27\r\n Exponent: 65537 (0x10001)\r\n Signature Algorithm: sha256WithRSAEncryption\r\n 0a:b1:6a:7a:89:fa:59:ca:45:18:52:05:68:3d:7f:27:c4:df:\r\n 1a:55:0d:83:f0:37:5b:2c:e8:26:7b:62:cf:5e:7d:b4:40:5c:\r\n b3:09:c6:48:d9:d9:b5:3b:97:30:65:ab:ef:56:00:d9:55:60:\r\n 08:03:15:3c:25:90:cd:f3:0c:11:ad:39:00:66:eb:49:98:47:\r\n 1b:d7:d4:0d:fb:52:39:d7:93:95:5b:77:64:02:46:1f:66:c1:\r\n 38:86:2c:d1:d4:73:ca:8c:76:41:f0:d8:51:e7:26:f3:c4:87:\r\n 5e:91:5b:17:a1:ff:40:49:76:b7:73:9a:c4:9b:8d:d8:78:eb:\r\n 63:cc:80:f6:4e:ba:c1:d0:9c:35:02:03:ed:99:30:c2:dd:7e:\r\n e0:57:3b:10:08:31:32:72:63:8e:d7:ff:7a:12:8b:c2:b0:e2:\r\n 86:03:a8:24:6a:6a:d2:59:7e:ec:b6:e7:d7:bc:f0:11:f5:81:\r\n 27:79:c5:2d:9a:06:6e:eb:cb:8a:19:d4:96:09:26:df:1a:c8:\r\n 78:f0:c5:1d:bd:fa:de:da:73:92:71:7d:fa:a7:4d:16:bd:38:\r\n df:9e:ea:12:08:4a:88:63:b3:30:c0:8c:90:11:ac:b6:ba:f1:\r\n 22:22:8b:37:78:bb:62:b5:71:eb:28:a3:88:9f:cc:3e:27:90:\r\n bb:12:a2:2c\r\n<\/code><\/pre>\n\u516c\u958b\u9375\u306b\u95a2\u3059\u308b\u60c5\u5831\u304c\u3042\u308b\u306e\u304b\u306a\uff1fpem \u5f62\u5f0f\u3067\u3001\u516c\u958b\u9375\u3092\u5f97\u308b\u306b\u306f\u4e0b\u8a18\u306e\u30b3\u30de\u30f3\u30c9\u3001<\/p>\n
$ openssl x509 -in server.cer -pubkey -noout\r\n-----BEGIN PUBLIC KEY-----\r\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtklu5Vc1eDvrgxJx78M\r\nWa7aRoG5MWZKplE1oCpC5RmKmvIsGalOoS53RBZ\/MLct0B7ryYBOh+YI\/ojlbXHs\r\nonqAa1ibpXmfO2ba94YxoIj2A+hnVOLWXm0S\/GOIqCERs\/WeDlz6ndy4AtBCClnM\r\nX+MZPbgDOytutGoTRYlJDn+0Y\/aGMreUvWqM1Ncxg6zdteCp8m9Ue9TYD7cSU7\/w\r\nqiXrrxJUj+nUI+\/o\/QnSwGbtNiDDAS+U\/voOHYf7g7SohTxouqJchrfAkrX66YAB\r\nUxyxXmj6U+4JCUtIKDSJelPB3Yrie7rzJr10oy7Xy0fZig84KJKhc8b7O9Gvt7oL\r\nJwIDAQAB\r\n-----END PUBLIC KEY-----\r\n<\/code><\/pre>\n\u79d8\u5bc6\u9375\u304b\u3089\u53d6\u308a\u51fa\u3057\u305f\u516c\u958b\u9375\u3068\u540c\u3058\u3067\u3059\u3002<\/p>\n
\u3055\u3066\u3001\u3084\u3063\u3068\u672c\u984c\u3067\u3059\u304c\u3001\u3053\u306e\u8a3c\u660e\u66f8\u3092 pfx \u30bf\u30a4\u30d7\u306b\u5909\u63db\u3057\u307e\u3059\u3002\u4e0b\u8a18\u306e\u30b3\u30de\u30f3\u30c9\u3067\u3001server.cer \u8aad\u307f\u8fbc\u3093\u3067\u4f5c\u6210\u3057\u307e\u3059\u3002\u79d8\u5bc6\u9375\u3082\u8aad\u307f\u8fbc\u307f\u307e\u3059\u3002\u9014\u4e2d\u3067\u3001\u6697\u53f7\u5316\u306e\u30d1\u30b9\u30ef\u30fc\u30c9\u3092\u5165\u529b\u3057\u3066\u3044\u307e\u3059\u3002\u672c\u756a\u3067\u306f\u3001\u4e2d\u9593\u8a3c\u660e\u66f8\u306a\u3069\u304c\u3042\u308b\u306e\u3067\u3001\u305d\u308c\u3092\u8aad\u307f\u8fbc\u3080\u30aa\u30d7\u30b7\u30e7\u30f3\u3082\u4ed8\u3051\u308b\u306e\u3067\u3059\u304c(\u53c2\u8003\u30b5\u30a4\u30c8<\/a>)\u3001\u4eca\u56de\u306f\u3042\u308a\u307e\u305b\u3093\u3002<\/p>\n$ openssl pkcs12 -export -in server.cer -inkey server.key -out server.pfx\r\nEnter Export Password:\r\nVerifying - Enter Export Password:\r\n<\/code><\/pre>\nserver.pfx \u3068\u3044\u3046\u30d5\u30a1\u30a4\u30eb\u304c\u4f5c\u6210\u3055\u308c\u308b\u306e\u3067\u3059\u304c\u3001\u30d0\u30a4\u30ca\u30ea\u30fc\u30d5\u30a1\u30a4\u30eb\u3067\u8868\u793a\u3067\u304d\u307e\u305b\u3093\u3002\u305d\u308c\u6545\u3001\u304d\u3061\u3093\u3068\u51fa\u6765\u4e0a\u304c\u3063\u305f\u306e\u304b\u4e0d\u5b89\u306b\u306a\u308a\u307e\u3059\u3002\u4ee5\u4e0b\u3001\u305d\u306e\u78ba\u8a8d\u306e\u8a71\u3067\u3059\u3002<\/p>\n
\u53c2\u8003\u30b5\u30a4\u30c8<\/p>\n
\n- OpenSSL\u3067pfx\u5f62\u5f0f\u3001PKCS#12\u5f62\u5f0f\u3092PEM\u5f62\u5f0f\u306b\u5909\u63db\u3059\u308b<\/a><\/li>\n
- pfx\u5f62\u5f0f\u3001PKCS#12\u5f62\u5f0f\u306e\u8a3c\u660e\u66f8\u3092OpenSSL\u3067pem\u5f62\u5f0f\u306b\u5909\u66f4\u3059\u308b<\/a><\/li>\n
- openssl\u3067RSA\u6697\u53f7\u3068\u904a\u3076<\/a><\/li>\n<\/ol>\n
server.pfx \u306e\u5185\u5bb9\u3092\u8868\u793a\u3057\u3066\u307f\u307e\u3059\u3002\u4e0b\u8a18\u306e\u30b3\u30de\u30f3\u30c9\u3067\u3001\u5185\u5bb9\u304c pem \u5f62\u5f0f\u3067\u66f8\u304d\u51fa\u3055\u308c\u307e\u3059\u3002<\/p>\n
$ openssl pkcs12 -in server.pfx -nodes -out output.pem\r\nEnter Import Password:\r\nMAC verified OK\r\n<\/code><\/pre>\noutput.pem \u306e\u5185\u5bb9\u306f\u4e0b\u8a18\u3067\u3059\u3002<\/p>\n
Bag Attributes\r\n localKeyID: C1 5F 2E F7 7E 0F D7 29 CB 63 EE CE 7E 7A 49 A3 88 65 5F 9B \r\nsubject=\/C=JP\/L=Academe\/O=Oita Univ.\/OU=kondolab\/CN=192.168.100.190\r\nissuer=\/C=JP\/L=Academe\/O=Oita Univ.\/OU=kondolab\/CN=192.168.100.190\r\n-----BEGIN CERTIFICATE-----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\r\neLtitXHrKKOIn8w+J5C7EqIs\r\n-----END CERTIFICATE-----\r\nBag Attributes\r\n localKeyID: C1 5F 2E F7 7E 0F D7 29 CB 63 EE CE 7E 7A 49 A3 88 65 5F 9B \r\nKey Attributes: \r\n-----BEGIN PRIVATE KEY-----\r\nMIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQCu2SW7lVzV4O+u\r\nDEnHvwxZrtpGgbkxZkqmUTWgKkLlGYqa8iwZqU6hLndEFn8wty3QHuvJgE6H5gj+\r\niOVtceyieoBrWJuleZ87Ztr3hjGgiPYD6GdU4tZebRL8Y4ioIRGz9Z4OXPqd3LgC\r\n0EIKWcxf4xk9uAM7K260ahNFiUkOf7Rj9oYyt5S9aozU1zGDrN214Knyb1R71NgP\r\ntxJTv\/CqJeuvElSP6dQj7+j9CdLAZu02IMMBL5T++g4dh\/uDtKiFPGi6olyGt8CS\r\ntfrpgAFTHLFeaPpT7gkJS0goNIl6U8HdiuJ7uvMmvXSjLtfLR9mKDzgokqFzxvs7\r\n0a+3ugsnAgMBAAECggEBAJeATDOXnhMsjkFPIHbVUYw796H0MVVefvxRjZe0RrZg\r\nRTsw74lkrF749hqnK5o4fpfA0ymL5X\/XkJ+MWs9UUWgPoUpiQqtFEPXVj5G+Uy34\r\nvsJwE2j4DCtRc4wBap3T2ZUHE+b6JaW3ZDH75d02JeJH0s0prpMMdSYaa4xrAkRu\r\ncFybfI1V8SGQnzxaP1pRbkelP35xRqbCUprZN+n48WKoXNmdrKY8vMWWRuL8YfPH\r\ns88ezqeJqmHmEthrUQ9rqiB2ZIF4e65RbOmFvMut\/yLBV+jIVQ8IWaljQl0K5jq\/\r\njmCJbLmVH9peMeAKMLgxP1dx5wvXdkKQRrD+LEvF\/HECgYEA1xwL7mP3oKfoPHoC\r\nIYzHRPFG9VNFez6c3X9KFE1U3aPPi9203rQJg4uV0iVRLVVPwd+WnGTVhTH\/7JQC\r\nypQfQ7dWIrjR38NFvppkhSwXc9CNrCOALv4CMJYM\/nadFT+WVyjKXqUnKsM7+uAw\r\nbVj3smEBcXgb6eRGmTLalNuNsF0CgYEA0BXZeY3gEUNUveqlCveD9NsNmuP9kIgP\r\nAvP8D0JGDma0b0NK8t7RfMqmL0oIhsMb98LU7I\/tByNS\/gv5+1JTr1m9dhd3lNVY\r\nw\/g3UfmNeIsvY\/bBBikvXZFvTTe9U2cVREKWozgro1Dgu1hie\/\/jJd4vkSkgbjZ4\r\n2ULNDAvngVMCgYA64j6R32Ol4tC73Vo\/\/N1\/jdyywzy95AHk0DdjH1gf4\/uoeeRN\r\nIlOIYul8QSLbmgLfO2lrHl8kuu8nv8yTz8BPNRyrHJS3AClTZ8gkfFFfLrPZb05j\r\njrzit\/COp8GQU3vAGDZteiAioJcGseAPzs7fUZanjQ13FToOLdGP9hnvMQKBgF6d\r\nQLhTeUmAKvz7vzWgW8CvBZ2jAv1\/0AuQstChWsdbjbl1iJOsGua6Ihwodn4IIyRh\r\n030I6Eaxmh\/nhC\/xPBnkHRCgFQB4jZb1uvmsFdZ0uwSiAxxxB5ds9IXQzWYp3fKe\r\nsG3gsX7d3IFy67zkGf1y7H\/9ikByxjpLdH6Avy\/\/AoGBAMYY1R0t6yL1zV5+Awq3\r\nD5XC\/BVJ9ziXTCouUFRlGgGutOgVpJDzBmPBQXsloeLFHdS+0y2ZSZGYqEX+Y5oF\r\n52f6GlL2BE6jtQR+BfMMb7lt44yjg7AhmoYqVXzlp6CroTMKx04oQKoFD6qii8na\r\nvHX4tpN0O6h7UF+EXLdEFn9j\r\n-----END PRIVATE KEY-----\r\n<\/code><\/pre>\n\u8a3c\u660e\u66f8\u3068\u79d8\u5bc6\u9375\u304c\u5165\u3063\u3066\u3044\u307e\u3059\u3002\u8a3c\u660e\u66f8\u3092\u5143\u306e\u3082\u306e\u3068\u6bd4\u3079\u308b\u3068\u4e00\u81f4\u3057\u3066\u3044\u308b\u3053\u3068\u304c\u5206\u304b\u308a\u307e\u3059\u3002\u3057\u304b\u3057\u3001\u79d8\u5bc6\u9375\u3092\u6bd4\u3079\u308b\u3068\u7570\u306a\u3063\u3066\u3044\u307e\u3059\u3002\u3053\u306e\u79d8\u5bc6\u9375\u306e\u90e8\u5206\u3060\u3051\u3092\u5207\u308a\u53d6\u3063\u3066\u3001output.key \u3068\u3057\u3066\u4fdd\u5b58\u3057\u307e\u3059\u3002<\/p>\n
output.key \u306e\u4e2d\u306e\u516c\u958b\u9375\u3092\u8868\u793a\u3057\u307e\u3059\u3002<\/p>\n
$ openssl rsa -in output.key -pubout\r\nwriting RSA key\r\n-----BEGIN PUBLIC KEY-----\r\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtklu5Vc1eDvrgxJx78M\r\nWa7aRoG5MWZKplE1oCpC5RmKmvIsGalOoS53RBZ\/MLct0B7ryYBOh+YI\/ojlbXHs\r\nonqAa1ibpXmfO2ba94YxoIj2A+hnVOLWXm0S\/GOIqCERs\/WeDlz6ndy4AtBCClnM\r\nX+MZPbgDOytutGoTRYlJDn+0Y\/aGMreUvWqM1Ncxg6zdteCp8m9Ue9TYD7cSU7\/w\r\nqiXrrxJUj+nUI+\/o\/QnSwGbtNiDDAS+U\/voOHYf7g7SohTxouqJchrfAkrX66YAB\r\nUxyxXmj6U+4JCUtIKDSJelPB3Yrie7rzJr10oy7Xy0fZig84KJKhc8b7O9Gvt7oL\r\nJwIDAQAB\r\n-----END PUBLIC KEY-----\r\n<\/code><\/pre>\n\u3053\u308c\u306f\u3001\u78ba\u304b\u306b\u5143\u3005\u306e\u516c\u958b\u9375\u3068\u4e00\u81f4\u3057\u3066\u3044\u307e\u3059\u3002\u305d\u3053\u3067\u3001\u6697\u53f7\u5316\u3068\u5fa9\u53f7\u3092\u8a66\u3057\u3066\u307f\u307e\u3059\u3002
\n\u307e\u305a\u3001\u5143\u3005\u306e\u516c\u958b\u9375 public.key \u3067\u201dHELLO\u201d \u3092\u6697\u53f7\u5316\u3057\u307e\u3059\u3002<\/p>\n
$ echo \"HELLO\" | openssl rsautl -encrypt -pubin -inkey public.key > message<\/code><\/pre>\n\u3053\u306e message \u306f\u3001\u30d0\u30a4\u30ca\u30ea\u30fc\u30d5\u30a1\u30a4\u30eb\u3067\u3059\u3002\u3053\u308c\u3092 output.key \u3067\u8907\u5408\u3057\u307e\u3059\u3002<\/p>\n
$ cat message | openssl rsautl -decrypt -inkey output.key \r\nHELLO\r\n<\/code><\/pre>\n\u78ba\u304b\u306b\u3001\u5fa9\u53f7\u3067\u304d\u307e\u3057\u305f\u3002\u898b\u305f\u76ee\u306f\u7570\u306a\u3063\u3066\u3044\u308b\u306e\u3067\u3059\u304c\u3001\u6b63\u3057\u3044\u79d8\u5bc6\u9375\u3067\u306f\u3042\u308b\u3088\u3046\u3067\u3059\u3002\u306a\u305c\u3001\u898b\u305f\u76ee\u304c\u7570\u306a\u308b\u306e\u304b\u5206\u304b\u308a\u307e\u305b\u3093\u304c\u3002<\/p>\n
\u3068\u308a\u3042\u3048\u305a\u4eca\u56de\u306f\u3053\u3053\u307e\u3067\u3002 pfx \u30d5\u30a1\u30a4\u30eb\u306f\u3001\u304d\u3061\u3093\u3068\u4f5c\u6210\u3055\u308c\u3066\u3044\u308b\u306e\u3067\u306f\u306a\u3044\u304b\u3068\u3044\u3046\u3068\u3053\u308d\u3067\u7d42\u308f\u308a\u307e\u3059\u3002\u3042\u3068\u306f\u3001nodejs \u3078\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3067\u3059\u3002pfx \u30d5\u30a1\u30a4\u30eb\u306f\u3001\u79d8\u5bc6\u9375\u306b\u76f8\u5f53\u3059\u308b\u30d5\u30a1\u30a4\u30eb\u3067\u3059\u3088\u306d\uff1f <\/p>\n","protected":false},"excerpt":{"rendered":"